Establishment of a data exchange: Is Vietnam building a data market or a data management mechanism with market elements?
In Vietnam, this situation exists in many fields. National databases, specialized databases and data held by enterprises are formed more and more, but most of them still operate relatively independently. Meanwhile, technology enterprises, research organizations and artificial intelligence developers have the need to access big data sources to build new products and services but lack a transparent and legal transaction mechanism.
Why should enterprises conduct legal training on personal data protection for employees?
For many years, when it comes to legal compliance in businesses, people often think of issues such as taxation, labor, fire protection, production safety, or internal controls. However, in the context of strong digital transformation, personal data has become a type of "special asset" of businesses and at the same time an object of increasingly tight protection by law.
The paradox of personal location data
In the digital economy, a person's location data tells a lot of things, from where they are, where they live and work, who they often meet, what habits they move into, and what behavioral groups they may belong to. Location data from this perspective has the highest commercial value for businesses, and is also one of the types of data with the greatest privacy risk from a consumer perspective.
Draft Decree guiding the Law on Cybersecurity: What do cross-border business enterprises need to prepare?
The Draft Decree detailing a number of articles and measures to implement the Law on Cyber Security 2025 (the "Draft Decree") is attracting great attention from the business community, especially enterprises providing cross-border services in Vietnam. According to the content of the Draft, the drafting agency is aiming to establish a stricter and more synchronous cyber security management mechanism, including issues such as: cyber security protection measures, ensuring network information security, IP address identification management and data storage mechanism in Vietnam.
Is the personal data of the deceased protected?
Recently, social networks in Vietnam have recorded the widespread spread of information about the private life of a deceased student – from letters written to family, health status to personal circumstances before death . These contents, although shared for various purposes, from memorials to expressing emotions, quickly attracted great attention from the community. However, besides the sympathetic reactions, the case also raises a notable legal question: is the personal data of a deceased person protected?
Preventing data leaks from leaved employees: A forgotten vulnerability
Many personal data leaks in Vietnam originate from employees who used to work in businesses. When the "old" becomes a new risk, the question is no longer how businesses handle the consequences, but how early they should design prevention mechanisms to limit these risks.
Who will be Vietnam's cyber security protection force?
The explosion of cyberspace in recent years has become a critical environment for state management, socio-economic development, national defense and security. However, along with the great benefits is the increasingly complex development of the cybersecurity situation. Acts of attack, illegal intrusion and data theft are on the rise, directly threatening national security and social order and safety.
Legal risk management of AI in business activities: not simple
Perplexity, a U.S. artificial intelligence company that has developed an "AI agent" feature called Comet that can shop on its own and "infiltrate" the world's largest shopping platform Amazon, presenting major legal, technical, and administrative challenges in the context of booming AI commerce. So what do businesses need to do to use and manage AI safely and effectively in the context of today's technology boom?
Amended Law on Technology Transfer and Implementing decree: Necessary adjustments for a new stage of development
Vietnam is looking forward to transforming itself by encouraging the application of advanced technologies and processes from the world, contributing to trade activities and national growth. The Law on Technology Transfer 2017 has been supplemented and adjusted a number of articles in 2025 ("Law on Technology Transfer 2025") together with Decree No. 101/2026/ND-CP detailing and guiding the implementation of a number of articles of the Law on Technology Transfer ("Decree 101"), which has created a new legal framework for organizations, individuals are entitled to receive the transfer of clean, advanced, and suitable technologies for the new situation.
Businesses struggle when partners expose customers' personal data
A dashcam clip recording the incident of musician Minh Khang arguing with a Grab driver in mid-March 2026 was posted by the driver and spread on social networks. Facial images, voices, and location data of passengers have been publicly disseminated. Grab responded by permanently blocking partner accounts, but this incident raises a key question for thousands of businesses: when partners and third parties disclose customer personal data, what should the business do to ensure compliance with the law as well as protect its reputation Customers' trust in the brand?
When personal data processing services become a conditional line of business
The Law on Personal Data Protection No. 91/2025/QH15 dated June 26, 2025 of the National Assembly ("Law on PDP") and the Government's Decree No. 356/2025/ND-CP dated December 31, 2025 detailing a number of articles and measures to implement the Law on PDP ("Decree 356") have established personal data processing services as a conditional business field for the first time, are directly governed by specialized laws on PDP. This regulation has a significant impact on many businesses operating in the digital economy.
.png)
+84 28 7308 0839.png)
hmplaw.vn
